Tags active-directory1 ai1 alert-triage1 automation2 blue-team3 cyberdefenders1 detection-response1 dfir5 endpoint-forensics1 event-logs1 htb-sherlock4 incident-response2 investigation1 kerberoasting1 log-analysis1 memory-analysis3 memprocfs1 phishing1 powerShell1 prefetch1 soar2 soc3 splunk2 sysmon1 volatility21 volatility31 wazuh1